Organisations are understandably interested in mechanisms to reduce the scope of PCI DSS assessment and consequently reduce its associated cost. By far the easiest mechanism to achieve this objective is to get rid of card data from your environment, and neither store, process or transmit any form of card data.
|
|
|
|
|
|
Nettitude recognises that although this is the easiest mechanism to reduce the scope
of PCI DSS assessment, it is frequently impossible to achieve. As a consequence,
Nettitude recommends a more pragmatic approach is to reduce the exposure to risk.
If the exposure to risk is reduced, so the scope of assessment will be conversely
reduced.
Although there are many mechanisms to descope PCI DSS and reduce exposure to risk,
Nettitude frequently experiences a series of approaches that can assist both merchants
and service providers alike. Some of these more common approaches are discussed
over the following pages.
|
|
|
To find out more about how Nettitude can help you with your Compliance requirements,
please complete our contact form,
and a Consultant will respond to your enquiry.